Google Cloud Storage with google-api-client-php and JSON credential but got 403 error after awhile
Question
I am tring to use Google Cloud Storage service by google-api-client-php SDK with JSON credential, and applying the example code like:
putenv("GOOGLE_APPLICATION_CREDENTIALS=/path/to/service-account.json");
$client = new Google_Client();
$client->useApplicationDefaultCredentials();
$client->addScope(Google_Service_Storage::DEVSTORAGE_FULL_CONTROL);
$storage = new Google_Service_Storage($client);
$ret = $storage->buckets->listBuckets("project-id");
However, these codes are okay after first few hours I create the credential, but I keep receive 'permission denied' error with same code/credential file few hours later.
PHP Fatal error: Uncaught exception 'Google_Service_Exception' with message '{
"error": {
"errors": [
{
"domain": "global",
"reason": "forbidden",
"message": "Forbidden"
}
],
"code": 403,
"message": "Forbidden"
}
}
I have not idea if this is a code level or service level problem...
1 answers
solution1
1 2016-01-15 23:29:51
Make sure your service account has the right permissions in GCP:
In the console, go to:
Api Manager > Credentials > Manage Service Accounts > Permissions > Add Member
On the pop-up screen, paste your service account's email address and give it "can edit" access. That should do it.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.